Citrix XenApp and XenDesktop XML Service Interface Remote Code Execution Vulnerability
Gravité: : Critique
Date du conseil: 21 juillet 2015
Description
Citrix XenApp and XenDesktop are prone to a remote code-execution vulnerability.
An attacker can exploit this vulnerability to execute arbitrary code in the context of a service account on the vulnerable server.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1004763
Trend Micro Deep Security DPI Rule Name: 1004763 - Citrix XenApp And XenDesktop XML Service Interface Remote Code Execution Vulnerability
Affected software and version:
- Citrix XenApp
- Citrix XenDesktop